Skip to main content
Glama
deenesjakoruzh

Claude MCP Server Ecosystem

by Coder-RL
OverviewInspectNewSchemaRelated ServersScore
TypeScript
Local
zero-trust-framework.ts31.6 kB
import { EventEmitter } from 'events'; import { createLogger } from '../../shared/src/logging.js'; import { memoryOptimizationSuite } from '../../shared/src/memory-optimization-suite.js'; export interface ZeroTrustPolicy { id: string; name: string; version: string; description: string; rules: PolicyRule[]; conditions: PolicyCondition[]; actions: PolicyAction[]; metadata: { createdBy: string; createdAt: number; updatedAt: number; tags: string[]; environment: string; }; status: 'active' | 'inactive' | 'deprecated'; } export interface PolicyRule { id: string; type: 'allow' | 'deny' | 'audit' | 'challenge'; priority: number; conditions: { subject: SubjectCondition; resource: ResourceCondition; action: ActionCondition; context: ContextCondition; }; exceptions: string[]; timeWindow?: TimeWindow; } export interface SubjectCondition { type: 'user' | 'service' | 'device' | 'application'; identifiers: string[]; attributes: AttributeCondition[]; groups: string[]; roles: string[]; } export interface ResourceCondition { type: 'endpoint' | 'data' | 'service' | 'infrastructure'; patterns: string[]; classification: 'public' | 'internal' | 'confidential' | 'restricted'; attributes: AttributeCondition[]; } export interface ActionCondition { operations: string[]; methods: string[]; scope: string[]; } export interface ContextCondition { network: NetworkCondition; device: DeviceCondition; time: TimeCondition; location: LocationCondition; risk: RiskCondition; } export interface AttributeCondition { name: string; operator: 'equals' | 'not_equals' | 'contains' | 'not_contains' | 'regex' | 'in' | 'not_in'; values: string[]; } export interface NetworkCondition { allowedNetworks: string[]; blockedNetworks: string[]; requireVPN: boolean; allowedCountries: string[]; blockedCountries: string[]; } export interface DeviceCondition { requiredCompliance: string[]; allowedDeviceTypes: string[]; requiredEncryption: boolean; maxRiskScore: number; } export interface TimeCondition { allowedHours: string[]; allowedDays: string[]; timezone: string; } export interface LocationCondition { allowedRegions: string[]; blockedRegions: string[]; maxDistanceFromOffice: number; } export interface RiskCondition { maxRiskScore: number; riskFactors: string[]; requireMFA: boolean; } export interface TimeWindow { start: Date; end: Date; recurrence?: 'daily' | 'weekly' | 'monthly'; } export interface PolicyCondition { type: 'and' | 'or' | 'not'; conditions: (PolicyCondition | PolicyRule)[]; } export interface PolicyAction { type: 'allow' | 'deny' | 'challenge' | 'audit' | 'alert' | 'quarantine'; parameters: Record<string, any>; notifications: NotificationConfig[]; } export interface NotificationConfig { type: 'email' | 'sms' | 'slack' | 'webhook'; recipients: string[]; template: string; urgency: 'low' | 'medium' | 'high' | 'critical'; } export interface AccessRequest { id: string; subject: { type: 'user' | 'service' | 'device' | 'application'; identifier: string; attributes: Record<string, any>; credentials: Credential[]; }; resource: { type: 'endpoint' | 'data' | 'service' | 'infrastructure'; identifier: string; classification: string; attributes: Record<string, any>; }; action: { operation: string; method: string; scope: string[]; }; context: { requestTime: number; sourceIP: string; userAgent: string; deviceInfo: DeviceInfo; networkInfo: NetworkInfo; locationInfo: LocationInfo; riskScore: number; sessionInfo: SessionInfo; }; metadata: Record<string, any>; } export interface Credential { type: 'password' | 'token' | 'certificate' | 'biometric' | 'mfa'; value: string; issuer: string; expiresAt?: number; scopes: string[]; } export interface DeviceInfo { id: string; type: 'desktop' | 'mobile' | 'tablet' | 'server' | 'iot'; os: string; version: string; isManaged: boolean; complianceStatus: 'compliant' | 'non_compliant' | 'unknown'; encryptionStatus: 'encrypted' | 'not_encrypted' | 'unknown'; riskScore: number; } export interface NetworkInfo { sourceIP: string; sourceNetwork: string; country: string; region: string; isVPN: boolean; isTor: boolean; isProxy: boolean; riskScore: number; } export interface LocationInfo { latitude: number; longitude: number; accuracy: number; country: string; region: string; city: string; timezone: string; } export interface SessionInfo { id: string; createdAt: number; lastActivity: number; mfaVerified: boolean; riskScore: number; anomalies: string[]; } export interface AccessDecision { decision: 'allow' | 'deny' | 'challenge'; reason: string; confidence: number; appliedPolicies: string[]; requiredActions: string[]; validityPeriod: number; conditions: string[]; riskFactors: RiskFactor[]; auditTrail: AuditEntry[]; } export interface RiskFactor { type: string; description: string; severity: 'low' | 'medium' | 'high' | 'critical'; score: number; mitigation: string; } export interface AuditEntry { timestamp: number; action: string; actor: string; resource: string; result: string; details: Record<string, any>; } export interface ThreatIntelligence { id: string; type: 'ip' | 'domain' | 'hash' | 'signature' | 'behavior'; value: string; threat_type: 'malware' | 'phishing' | 'botnet' | 'bruteforce' | 'anomaly'; severity: 'low' | 'medium' | 'high' | 'critical'; confidence: number; source: string; first_seen: number; last_seen: number; tags: string[]; indicators: string[]; } export class ZeroTrustFramework extends EventEmitter { private logger = createLogger('ZeroTrustFramework'); private policies = new Map<string, ZeroTrustPolicy>(); private threatIntelligence = new Map<string, ThreatIntelligence>(); private accessRequests = new Map<string, AccessRequest>(); private auditLog: AuditEntry[] = []; private policyEngine: PolicyEngine; private riskEngine: RiskEngine; private identityProvider: IdentityProvider; private deviceManager: DeviceManager; private threatIntelligenceService: ThreatIntelligenceService; private complianceManager: ComplianceManager; private monitoringInterval: NodeJS.Timeout | null = null; constructor() { super(); this.policyEngine = new PolicyEngine(this); this.riskEngine = new RiskEngine(this); this.identityProvider = new IdentityProvider(this); this.deviceManager = new DeviceManager(this); this.threatIntelligenceService = new ThreatIntelligenceService(this); this.complianceManager = new ComplianceManager(this); this.initializeDefaultPolicies(); this.startMonitoring(); this.setupEventHandlers(); this.logger.info('Zero Trust Framework initialized'); } private setupEventHandlers(): void { this.on('accessRequest', (request) => { this.auditLog.push({ timestamp: Date.now(), action: 'access_request', actor: request.subject.identifier, resource: request.resource.identifier, result: 'pending', details: { requestId: request.id } }); }); this.on('accessDecision', (decision, request) => { this.auditLog.push({ timestamp: Date.now(), action: 'access_decision', actor: request.subject.identifier, resource: request.resource.identifier, result: decision.decision, details: { requestId: request.id, reason: decision.reason, confidence: decision.confidence, policies: decision.appliedPolicies } }); }); this.on('threatDetected', (threat) => { this.logger.warn(`Threat detected: ${threat.type}`, threat); this.auditLog.push({ timestamp: Date.now(), action: 'threat_detected', actor: 'system', resource: threat.value, result: 'alert', details: threat }); }); this.on('policyViolation', (violation) => { this.logger.error(`Policy violation: ${violation.policy}`, violation); this.auditLog.push({ timestamp: Date.now(), action: 'policy_violation', actor: violation.subject, resource: violation.resource, result: 'violation', details: violation }); }); } private initializeDefaultPolicies(): void { // Default deny-all policy const defaultDenyPolicy: ZeroTrustPolicy = { id: 'default-deny', name: 'Default Deny Policy', version: '1.0.0', description: 'Default policy that denies all access unless explicitly allowed', rules: [{ id: 'deny-all', type: 'deny', priority: 1000, conditions: { subject: { type: 'user', identifiers: ['*'], attributes: [], groups: [], roles: [] }, resource: { type: 'endpoint', patterns: ['*'], classification: 'public', attributes: [] }, action: { operations: ['*'], methods: ['*'], scope: ['*'] }, context: { network: { allowedNetworks: [], blockedNetworks: [], requireVPN: false, allowedCountries: [], blockedCountries: [] }, device: { requiredCompliance: [], allowedDeviceTypes: [], requiredEncryption: false, maxRiskScore: 100 }, time: { allowedHours: [], allowedDays: [], timezone: 'UTC' }, location: { allowedRegions: [], blockedRegions: [], maxDistanceFromOffice: 0 }, risk: { maxRiskScore: 100, riskFactors: [], requireMFA: false } } }, exceptions: [] }], conditions: [], actions: [{ type: 'deny', parameters: { reason: 'Default deny policy' }, notifications: [] }], metadata: { createdBy: 'system', createdAt: Date.now(), updatedAt: Date.now(), tags: ['default', 'security'], environment: 'all' }, status: 'active' }; // Health check allow policy const healthCheckPolicy: ZeroTrustPolicy = { id: 'health-check-allow', name: 'Health Check Allow Policy', version: '1.0.0', description: 'Allow health check requests', rules: [{ id: 'allow-health-checks', type: 'allow', priority: 100, conditions: { subject: { type: 'service', identifiers: ['*'], attributes: [], groups: [], roles: [] }, resource: { type: 'endpoint', patterns: ['/health', '*/health'], classification: 'public', attributes: [] }, action: { operations: ['read'], methods: ['GET'], scope: ['health'] }, context: { network: { allowedNetworks: [], blockedNetworks: [], requireVPN: false, allowedCountries: [], blockedCountries: [] }, device: { requiredCompliance: [], allowedDeviceTypes: [], requiredEncryption: false, maxRiskScore: 50 }, time: { allowedHours: [], allowedDays: [], timezone: 'UTC' }, location: { allowedRegions: [], blockedRegions: [], maxDistanceFromOffice: 0 }, risk: { maxRiskScore: 50, riskFactors: [], requireMFA: false } } }, exceptions: [] }], conditions: [], actions: [{ type: 'allow', parameters: { reason: 'Health check endpoint' }, notifications: [] }], metadata: { createdBy: 'system', createdAt: Date.now(), updatedAt: Date.now(), tags: ['health', 'monitoring'], environment: 'all' }, status: 'active' }; // High-risk deny policy const highRiskDenyPolicy: ZeroTrustPolicy = { id: 'high-risk-deny', name: 'High Risk Deny Policy', version: '1.0.0', description: 'Deny access for high-risk requests', rules: [{ id: 'deny-high-risk', type: 'deny', priority: 50, conditions: { subject: { type: 'user', identifiers: ['*'], attributes: [], groups: [], roles: [] }, resource: { type: 'endpoint', patterns: ['*'], classification: 'public', attributes: [] }, action: { operations: ['*'], methods: ['*'], scope: ['*'] }, context: { network: { allowedNetworks: [], blockedNetworks: [], requireVPN: false, allowedCountries: [], blockedCountries: [] }, device: { requiredCompliance: [], allowedDeviceTypes: [], requiredEncryption: false, maxRiskScore: 100 }, time: { allowedHours: [], allowedDays: [], timezone: 'UTC' }, location: { allowedRegions: [], blockedRegions: [], maxDistanceFromOffice: 0 }, risk: { maxRiskScore: 80, riskFactors: [], requireMFA: false } } }, exceptions: [] }], conditions: [], actions: [{ type: 'deny', parameters: { reason: 'High risk score detected' }, notifications: [{ type: 'email', recipients: ['security@company.com'], template: 'high-risk-access-denied', urgency: 'high' }] }], metadata: { createdBy: 'system', createdAt: Date.now(), updatedAt: Date.now(), tags: ['risk', 'security'], environment: 'all' }, status: 'active' }; this.policies.set(defaultDenyPolicy.id, defaultDenyPolicy); this.policies.set(healthCheckPolicy.id, healthCheckPolicy); this.policies.set(highRiskDenyPolicy.id, highRiskDenyPolicy); } async evaluateAccess(request: AccessRequest): Promise<AccessDecision> { const startTime = Date.now(); this.emit('accessRequest', request); try { // Step 1: Enrich request with additional context const enrichedRequest = await this.enrichRequest(request); // Step 2: Calculate risk score const riskScore = await this.riskEngine.calculateRiskScore(enrichedRequest); enrichedRequest.context.riskScore = riskScore; // Step 3: Check threat intelligence const threats = await this.threatIntelligenceService.checkThreats(enrichedRequest); if (threats.length > 0) { this.emit('threatDetected', threats[0]); } // Step 4: Evaluate policies const decision = await this.policyEngine.evaluatePolicies(enrichedRequest); // Step 5: Apply additional security checks const finalDecision = await this.applySecurityChecks(decision, enrichedRequest); // Step 6: Log decision this.emit('accessDecision', finalDecision, enrichedRequest); const evaluationTime = Date.now() - startTime; this.logger.info(`Access evaluation completed in ${evaluationTime}ms`, { requestId: request.id, decision: finalDecision.decision, confidence: finalDecision.confidence }); return finalDecision; } catch (error) { this.logger.error(`Access evaluation failed for request ${request.id}:`, error); return { decision: 'deny', reason: 'Evaluation error', confidence: 0, appliedPolicies: [], requiredActions: [], validityPeriod: 0, conditions: [], riskFactors: [{ type: 'system_error', description: 'Access evaluation failed', severity: 'high', score: 100, mitigation: 'Review system logs and retry' }], auditTrail: [] }; } } private async enrichRequest(request: AccessRequest): Promise<AccessRequest> { // Enrich with device information const deviceInfo = await this.deviceManager.getDeviceInfo(request.context.deviceInfo.id); if (deviceInfo) { request.context.deviceInfo = deviceInfo; } // Enrich with identity information const identityInfo = await this.identityProvider.getIdentityInfo(request.subject.identifier); if (identityInfo) { Object.assign(request.subject.attributes, identityInfo); } // Enrich with location information const locationInfo = await this.getLocationInfo(request.context.sourceIP); if (locationInfo) { request.context.locationInfo = locationInfo; } return request; } private async getLocationInfo(ip: string): Promise<LocationInfo | null> { // Simplified IP geolocation - in production would use real service return { latitude: 37.7749, longitude: -122.4194, accuracy: 1000, country: 'US', region: 'CA', city: 'San Francisco', timezone: 'America/Los_Angeles' }; } private async applySecurityChecks(decision: AccessDecision, request: AccessRequest): Promise<AccessDecision> { // Apply additional security checks based on decision if (decision.decision === 'allow') { // Check for anomalous behavior const anomalies = await this.detectAnomalies(request); if (anomalies.length > 0) { decision.decision = 'challenge'; decision.reason = 'Anomalous behavior detected'; decision.requiredActions = ['mfa_verification']; decision.riskFactors.push({ type: 'behavioral_anomaly', description: 'Unusual access pattern detected', severity: 'medium', score: 60, mitigation: 'Require additional authentication' }); } } return decision; } private async detectAnomalies(request: AccessRequest): Promise<string[]> { const anomalies: string[] = []; // Check for unusual time access const hour = new Date(request.context.requestTime).getHours(); if (hour < 6 || hour > 22) { anomalies.push('unusual_time_access'); } // Check for unusual location // This would typically involve comparing to user's normal locations // Check for unusual device if (!request.context.deviceInfo.isManaged) { anomalies.push('unmanaged_device'); } return anomalies; } createPolicy(policy: Omit<ZeroTrustPolicy, 'id' | 'metadata'>): string { const policyId = `policy_${Date.now()}_${Math.random().toString(36).substr(2, 9)}`; const fullPolicy: ZeroTrustPolicy = { ...policy, id: policyId, metadata: { createdBy: 'admin', createdAt: Date.now(), updatedAt: Date.now(), tags: policy.rules.map(r => r.type), environment: 'production' } }; this.policies.set(policyId, fullPolicy); this.emit('policyCreated', fullPolicy); this.logger.info(`Created zero trust policy: ${policy.name}`, { policyId }); return policyId; } updatePolicy(policyId: string, updates: Partial<ZeroTrustPolicy>): boolean { const policy = this.policies.get(policyId); if (!policy) { return false; } Object.assign(policy, updates); policy.metadata.updatedAt = Date.now(); this.emit('policyUpdated', policy); this.logger.info(`Updated zero trust policy: ${policy.name}`, { policyId }); return true; } deletePolicy(policyId: string): boolean { const policy = this.policies.get(policyId); if (!policy) { return false; } this.policies.delete(policyId); this.emit('policyDeleted', policy); this.logger.info(`Deleted zero trust policy: ${policy.name}`, { policyId }); return true; } addThreatIntelligence(threat: ThreatIntelligence): void { this.threatIntelligence.set(threat.id, threat); this.emit('threatIntelligenceAdded', threat); this.logger.info(`Added threat intelligence: ${threat.type}`, { threatId: threat.id }); } private startMonitoring(): void { this.monitoringInterval = setInterval(() => { this.performSecurityMonitoring(); }, 60000); // Every minute } private performSecurityMonitoring(): void { // Monitor for security events const recentAuditEntries = this.auditLog.filter(entry => Date.now() - entry.timestamp < 300000 // Last 5 minutes ); // Check for suspicious patterns const deniedRequests = recentAuditEntries.filter(entry => entry.action === 'access_decision' && entry.result === 'deny' ); if (deniedRequests.length > 10) { this.emit('suspiciousActivity', { type: 'high_denial_rate', count: deniedRequests.length, timeWindow: '5 minutes' }); } // Check for policy violations const violations = recentAuditEntries.filter(entry => entry.action === 'policy_violation' ); if (violations.length > 5) { this.emit('suspiciousActivity', { type: 'high_violation_rate', count: violations.length, timeWindow: '5 minutes' }); } } // Public API methods getPolicies(): ZeroTrustPolicy[] { return Array.from(this.policies.values()); } getPolicy(policyId: string): ZeroTrustPolicy | null { return this.policies.get(policyId) || null; } getThreatIntelligence(): ThreatIntelligence[] { return Array.from(this.threatIntelligence.values()); } getAuditLog(limit: number = 100): AuditEntry[] { return this.auditLog.slice(-limit); } getComplianceStatus(): any { return this.complianceManager.getComplianceStatus(); } async generateComplianceReport(): Promise<any> { return await this.complianceManager.generateReport(); } async shutdown(): Promise<void> { if (this.monitoringInterval) { clearInterval(this.monitoringInterval); } await this.complianceManager.shutdown(); this.logger.info('Zero Trust Framework shutdown completed'); } } class PolicyEngine { private framework: ZeroTrustFramework; private logger = createLogger('PolicyEngine'); constructor(framework: ZeroTrustFramework) { this.framework = framework; } async evaluatePolicies(request: AccessRequest): Promise<AccessDecision> { const policies = this.framework.getPolicies() .filter(p => p.status === 'active') .sort((a, b) => a.rules[0]?.priority - b.rules[0]?.priority); const appliedPolicies: string[] = []; const riskFactors: RiskFactor[] = []; let finalDecision: 'allow' | 'deny' | 'challenge' = 'deny'; let reason = 'No matching policy'; let confidence = 0; for (const policy of policies) { for (const rule of policy.rules) { if (await this.evaluateRule(rule, request)) { appliedPolicies.push(policy.id); finalDecision = rule.type === 'allow' ? 'allow' : rule.type === 'challenge' ? 'challenge' : 'deny'; reason = `Policy: ${policy.name}, Rule: ${rule.id}`; confidence = 0.9; break; } } if (finalDecision !== 'deny') break; } return { decision: finalDecision, reason, confidence, appliedPolicies, requiredActions: finalDecision === 'challenge' ? ['mfa_verification'] : [], validityPeriod: finalDecision === 'allow' ? 3600000 : 0, // 1 hour conditions: [], riskFactors, auditTrail: [] }; } private async evaluateRule(rule: PolicyRule, request: AccessRequest): Promise<boolean> { // Evaluate subject conditions if (!this.evaluateSubjectCondition(rule.conditions.subject, request.subject)) { return false; } // Evaluate resource conditions if (!this.evaluateResourceCondition(rule.conditions.resource, request.resource)) { return false; } // Evaluate action conditions if (!this.evaluateActionCondition(rule.conditions.action, request.action)) { return false; } // Evaluate context conditions if (!this.evaluateContextCondition(rule.conditions.context, request.context)) { return false; } return true; } private evaluateSubjectCondition(condition: SubjectCondition, subject: AccessRequest['subject']): boolean { if (condition.type !== subject.type && condition.type !== '*') { return false; } if (condition.identifiers.length > 0 && !condition.identifiers.includes(subject.identifier) && !condition.identifiers.includes('*')) { return false; } return true; } private evaluateResourceCondition(condition: ResourceCondition, resource: AccessRequest['resource']): boolean { if (condition.type !== resource.type && condition.type !== '*') { return false; } if (condition.patterns.length > 0) { const matches = condition.patterns.some(pattern => { if (pattern === '*') return true; if (pattern.includes('*')) { const regex = new RegExp(pattern.replace(/\*/g, '.*')); return regex.test(resource.identifier); } return pattern === resource.identifier; }); if (!matches) return false; } return true; } private evaluateActionCondition(condition: ActionCondition, action: AccessRequest['action']): boolean { if (condition.operations.length > 0 && !condition.operations.includes(action.operation) && !condition.operations.includes('*')) { return false; } if (condition.methods.length > 0 && !condition.methods.includes(action.method) && !condition.methods.includes('*')) { return false; } return true; } private evaluateContextCondition(condition: ContextCondition, context: AccessRequest['context']): boolean { // Check risk score if (context.riskScore > condition.risk.maxRiskScore) { return false; } // Check device compliance if (context.deviceInfo.riskScore > condition.device.maxRiskScore) { return false; } // Check network conditions if (condition.network.blockedNetworks.some(network => context.networkInfo.sourceNetwork.includes(network))) { return false; } return true; } } class RiskEngine { private framework: ZeroTrustFramework; private logger = createLogger('RiskEngine'); constructor(framework: ZeroTrustFramework) { this.framework = framework; } async calculateRiskScore(request: AccessRequest): Promise<number> { let totalScore = 0; let factorCount = 0; // Device risk const deviceRisk = this.calculateDeviceRisk(request.context.deviceInfo); totalScore += deviceRisk; factorCount++; // Network risk const networkRisk = this.calculateNetworkRisk(request.context.networkInfo); totalScore += networkRisk; factorCount++; // Location risk const locationRisk = this.calculateLocationRisk(request.context.locationInfo); totalScore += locationRisk; factorCount++; // Time risk const timeRisk = this.calculateTimeRisk(request.context.requestTime); totalScore += timeRisk; factorCount++; // Behavioral risk const behavioralRisk = await this.calculateBehavioralRisk(request); totalScore += behavioralRisk; factorCount++; return factorCount > 0 ? totalScore / factorCount : 0; } private calculateDeviceRisk(deviceInfo: DeviceInfo): number { let risk = 0; if (!deviceInfo.isManaged) risk += 30; if (deviceInfo.complianceStatus === 'non_compliant') risk += 40; if (deviceInfo.encryptionStatus === 'not_encrypted') risk += 20; if (deviceInfo.type === 'mobile') risk += 10; return Math.min(risk, 100); } private calculateNetworkRisk(networkInfo: NetworkInfo): number { let risk = 0; if (networkInfo.isTor) risk += 80; if (networkInfo.isProxy) risk += 40; if (!networkInfo.isVPN) risk += 20; return Math.min(risk, 100); } private calculateLocationRisk(locationInfo: LocationInfo): number { let risk = 0; // High-risk countries const highRiskCountries = ['CN', 'RU', 'KP', 'IR']; if (highRiskCountries.includes(locationInfo.country)) { risk += 50; } return Math.min(risk, 100); } private calculateTimeRisk(requestTime: number): number { const hour = new Date(requestTime).getHours(); // Higher risk during off-hours if (hour < 6 || hour > 22) { return 30; } return 0; } private async calculateBehavioralRisk(request: AccessRequest): Promise<number> { // Simplified behavioral analysis let risk = 0; // Check for rapid successive requests const recentRequests = this.framework.getAuditLog(100) .filter(entry => entry.actor === request.subject.identifier && Date.now() - entry.timestamp < 60000 // Last minute ); if (recentRequests.length > 10) { risk += 40; } return Math.min(risk, 100); } } class IdentityProvider { private framework: ZeroTrustFramework; private logger = createLogger('IdentityProvider'); constructor(framework: ZeroTrustFramework) { this.framework = framework; } async getIdentityInfo(identifier: string): Promise<Record<string, any> | null> { // Simplified identity lookup return { roles: ['user'], groups: ['employees'], department: 'engineering', clearanceLevel: 'standard' }; } } class DeviceManager { private framework: ZeroTrustFramework; private logger = createLogger('DeviceManager'); constructor(framework: ZeroTrustFramework) { this.framework = framework; } async getDeviceInfo(deviceId: string): Promise<DeviceInfo | null> { // Simplified device lookup return { id: deviceId, type: 'desktop', os: 'macOS', version: '12.0', isManaged: true, complianceStatus: 'compliant', encryptionStatus: 'encrypted', riskScore: 10 }; } } class ThreatIntelligenceService { private framework: ZeroTrustFramework; private logger = createLogger('ThreatIntelligenceService'); constructor(framework: ZeroTrustFramework) { this.framework = framework; } async checkThreats(request: AccessRequest): Promise<ThreatIntelligence[]> { const threats: ThreatIntelligence[] = []; // Check IP against threat intelligence const ipThreats = this.framework.getThreatIntelligence() .filter(threat => threat.type === 'ip' && threat.value === request.context.sourceIP ); threats.push(...ipThreats); return threats; } } class ComplianceManager { private framework: ZeroTrustFramework; private logger = createLogger('ComplianceManager'); constructor(framework: ZeroTrustFramework) { this.framework = framework; } getComplianceStatus(): any { return { soc2: 'compliant', gdpr: 'compliant', hipaa: 'not_applicable', pci: 'not_applicable', iso27001: 'in_progress', lastAssessment: Date.now() - 30 * 24 * 60 * 60 * 1000 // 30 days ago }; } async generateReport(): Promise<any> { const auditLog = this.framework.getAuditLog(1000); const policies = this.framework.getPolicies(); return { reportId: `compliance_${Date.now()}`, generatedAt: Date.now(), period: { start: Date.now() - 30 * 24 * 60 * 60 * 1000, end: Date.now() }, summary: { totalAccess: auditLog.filter(e => e.action === 'access_decision').length, deniedAccess: auditLog.filter(e => e.action === 'access_decision' && e.result === 'deny').length, activePolicies: policies.filter(p => p.status === 'active').length, violations: auditLog.filter(e => e.action === 'policy_violation').length }, compliance: this.getComplianceStatus() }; } async shutdown(): Promise<void> { // Cleanup compliance resources } } export default ZeroTrustFramework;

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/Coder-RL/Claude_MCPServer_Dev1'

If you have feedback or need assistance with the MCP directory API, please join our Discord server